IDEA Base is operated by IDEA Management LLC. We built this tool for developers and respect your privacy. This policy explains what data we collect, why, and how we protect it.
What We Collect
We collect only what we need to provide the service:
- Account information: Your name, email address, and profile picture (from OAuth providers or provided directly)
- Project data: Projects, tasks, time entries, and any content you create in the app
- Authentication data: Hashed passwords (if you use email/password login), passkey credentials, and OAuth tokens
- GitHub connection: Access tokens to connect your repositories (encrypted at rest)
- Usage data: Basic analytics like page views and feature usage to improve the product
How We Use Your Data
- To provide the service: Your projects, tasks, and time entries are stored so you can access them
- AI features: When you use AI task generation or completion verification, your project requirements and task descriptions are sent to Claude (Anthropic's AI). We don't send personal information to AI services
- To communicate: We send transactional emails (password resets, invites) and occasional product updates. You can opt out of non-essential emails
- To improve: We analyze usage patterns to make IDEA Base better
Third-Party Services
We use trusted third-party services to operate IDEA Base:
- Cloudflare: Hosting, database (D1), and file storage (R2). Your data is stored on Cloudflare infrastructure
- Anthropic (Claude API): Powers our AI features for task generation and completion verification
- Google & GitHub: OAuth authentication if you choose to sign in with these providers
- Resend: Sends transactional emails like password resets and team invites
- Stripe: Processes payments (we don't store your card details)
Cookies
We use minimal cookies:
- Session cookie: Keeps you logged in. This is essential for the app to work
- No advertising cookies: We don't use tracking cookies or sell your data to advertisers
Data Security
We take security seriously:
- All data transmitted over HTTPS
- Passwords hashed with PBKDF2 (100,000 iterations)
- GitHub tokens encrypted at rest
- Session cookies are HTTP-only and secure
Your Rights
You have control over your data:
- Access: You can view and export your data anytime from your account settings
- Correction: You can update your profile information at any time
- Deletion: You can delete your account and all associated data. Email us at [email protected] and we'll process your request within 30 days
- Portability: You can export your projects and tasks in standard formats
Data Retention
We keep your data as long as your account is active. If you delete your account, we remove your data within 30 days, except where we're required to retain it for legal or billing purposes.
Children's Privacy
IDEA Base is not intended for users under 16. We don't knowingly collect data from children.
Changes to This Policy
We may update this policy from time to time. We'll notify you of significant changes via email or an in-app notice.
Contact Us
Questions about this policy? We're here to help.